Changing password settings
Within the Crystal Management Console, you can change the password settings for a specific user or for all users in the system. For information, see Protection against malicious logon attempts.
The various restrictions listed below apply only to Enterprise accounts—that is, the restrictions do not apply to accounts that you have mapped to an external user database (Windows NT, LDAP, or Windows AD). Generally, however, your external system will enable you to place similar restrictions on the external accounts.
To change user password settings
- Go to the Users management area of the CMC.
- Click the user whose password settings you want to change.
The Properties tab appears.
- Select or clear the check box associated with the password setting you wish to change.
The available options are:
- Password never expires
- User must change password at next logon
- User cannot change password
- Click Update.
To change password settings
- Go to the Authentication management area of the CMC.
- Click the Enterprise tab.
- Select the check box and enter the value related to the password setting.
The table below identifies the minimum and maximum values for each of the settings you can configure:
| Password Setting
| Minimum
| Recommended
Maximum
|
|---|
Must contain at least N characters
| 0 characters
| 64 characters
|
Must change password every N days
| 1 day
| 100 days
|
Cannot reuse the N most recent passwords
| 1 password
| 100 passwords
|
Must wait N minutes to change password
| 0 minutes
| 100 minutes
|
Disable account after N failed attempts to log on
| 1 failed
| 100 failed
|
Reset failed logon count after N minutes
| 1 minute
| 100 minutes
|
Re-enable account after N minutes
| 0 minutes
| 100 minutes
|
- Click Update.